Editing Template:Networking rutxxx configuration examples l2tp pover ipsec windows

Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.

The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.

Latest revision Your text
Line 31: Line 31:
 
If you have familiarized yourself with the configuration scheme and have all of the devices in order, we can start configuring the routers using instructions provided in this section. To summarize, we'll be configuring an L2TP server and an IPsec Transport instance (server) on ''RUT1''; an a ''Windows 10 VPN connection (client).''
 
If you have familiarized yourself with the configuration scheme and have all of the devices in order, we can start configuring the routers using instructions provided in this section. To summarize, we'll be configuring an L2TP server and an IPsec Transport instance (server) on ''RUT1''; an a ''Windows 10 VPN connection (client).''
  
===L2TP Server===
+
===L2TP Server (RUT1)===
----
 
First, you'll need to configure an L2TP server instance on your router. Adhere to the instructions below for guidance.
 
 
----
 
----
 
<ul>
 
<ul>
Line 40: Line 38:
 
             <li>Select <i>Role: Server</i>.</li>
 
             <li>Select <i>Role: Server</i>.</li>
 
             <li>Enter a <i>custom configuration name</i>.</li>
 
             <li>Enter a <i>custom configuration name</i>.</li>
             <li>Click the <i>Add New</i> button.</li>
+
             <li>Click the 'Add New' button.</li>
             <li>Click the <i>Edit</i> button next to the newly created L2TP instance.</li>
+
             <li>Click the 'Edit' button next to the newly created L2TP instance.</li>
         </ol>[[File:{{{file_1}}}|border|class=tlt-border]]
+
         </ol>
    </li>
+
    </li>[[File:{{{file_l2tp_add}}}|border|class=tlt-border]]
 
----
 
----
     <li>Configure the L2TP server instance:</li>
+
     <li>Adhere to the configurations presented in the figure below:</li>
 
         <ol>
 
         <ol>
 
             <li><i>Enable</i> the L2TP instance.</li>
 
             <li><i>Enable</i> the L2TP instance.</li>
Line 51: Line 49:
 
             <li>Optionaly, set a fixed IP for this client (if left empty, client will receive first free IP from the IP range).</li>
 
             <li>Optionaly, set a fixed IP for this client (if left empty, client will receive first free IP from the IP range).</li>
 
             <li>Don't forget to <i>Save</i> the changes.</li>
 
             <li>Don't forget to <i>Save</i> the changes.</li>
         </ol>[[File:{{{file_2}}}|border|class=tlt-border]]
+
         </ol>[[File:{{{file_l2tp_config}}}|border|class=tlt-border]]
 
     </li>
 
     </li>
 
</ul>
 
</ul>
Line 57: Line 55:
 
===IPsec===
 
===IPsec===
 
----
 
----
Next, you must configure a working IPsec Transport connection. This subsection contains instructions on how to do just that. Other used parameters will be defaults; you can find explanations for those parameters in the '''[[{{{name}}}_VPN#IPsec|VPN manual page, IPsec section]]'''.
+
You must configure a working IPsec Transport connection. This subsection contains instructions on how to do just that. Other used parameters will be defaults; You can find explanations for those parameters in the '''[[VPN#IPsec|VPN manual page, IPsec section]]'''.
----
+
 
 +
<li>Go to '''Services --> VPN --> IPsec.''' Enter a name for your IPsec instance and click '''ADD'''.</li>
 +
 
 +
[[File:L2TPWIN10-05.png|border|class=tlt-border]]<br>
 +
<li>Your instance will appear like in the example and then press '''Edit.'''</li>
 +
[[File:L2TPWIN10-06.png|border|class=tlt-border]]<br>
 +
<ul>
 +
<div>'''1.''' Enable instance.</div>
 +
<div>'''2.''' Select Type (Transport).</div>
 +
<div>'''3.''' Leave other settings as default and press Save.</div>
 +
</ul>
 +
[[File:L2TPWIN10-07.png|border|class=tlt-border]]<br>
 +
<li>Then go back to the IPsec overview window.
 
<ul>
 
<ul>
    <li>Go to the <b>Services → VPN → IPsec</b> page and do the following:
+
<div>'''1.''' Press Add Pre-shared Keys (it should appear like in the example).</div>
        <ol>
+
<div>'''2.''' Create Pre-shared Key.</div>
            <li>Enter a custom name for the IPsec instance.</li>
+
<div>'''3.''' Write Secret’s ID selector (%any or users public IP address).</div>
            <li>Click the <i>Add</i> button.</li>
+
<div>'''4.''' Press '''Save'''</div>
            <li>Click the <i>Edit</i> button next to the newly created instance.</li>
 
        </ol>[[File:{{{file_3}}}|border|class=tlt-border]]
 
    </li>
 
----
 
    <li>In the IPsec Configuration page, do the following (and leave the rest as defaults, unless your specific configuration requires otherwise):
 
        <ol>
 
            <li>Enable the instance.</li>
 
            <li>Select <i>Type: Transport</i> and save changes.</li>
 
        </ol>[[File:{{{file_4}}}|border|class=tlt-border]]
 
    </li>
 
----
 
    <li>After having saved the changes, you will be redirected back to the main IPsec page. While there, locate the <b>Pre-shared Keys</b> section and do the following:
 
        <ol>
 
            <li>Click the <i>Add</i> button.</li>
 
            <li>Enter your <i>Pre-shared key</i>.</li>
 
            <li>Enter <i>%any</i> under <i>Secret's ID selector</i>.</li>
 
            <li>Click the <i>Save</i> button.</li>
 
        </ol>[[File:{{{file_5}}}|border|class=tlt-border]]
 
    </li>
 
 
</ul>
 
</ul>
 +
</li>
 +
[[File:L2TPWIN10-08.png|border|class=tlt-border|color=black]]
  
 
==Windows 10 client Configuration==
 
==Windows 10 client Configuration==
 +
<li>Write VPN in the search bar and then open VPN settings.</li>
 +
[[File:L2TPWIN10-09.png|border|class=tlt-border]]
 +
<li>Then press Add VPN connection</li>
 +
[[File:L2TPWIN10-10.png|border|class=tlt-border]]
  
Finally, configure the L2TP/IPsec client on your Windows 10 computer.
 
----
 
 
<ul>
 
<ul>
    <li>Type <i>VPN setting</i> in the Windows search bar:<br>[[File:{{{file_6}}}|border|class=tlt-border]]</li>
+
<div>'''1.''' Create Connection name.</div>
----
+
<div>'''2.''' Write server’s IP address.</div>
    <li>Click the <i>Add a VPN connection</i> button:<br>[[File:{{{file_7}}}|border|class=tlt-border]]</li>
+
<div>'''3.''' Select VPN type (L2TP/IPsec with pre-shared key).</div>
----
+
<div>'''4.''' Write Pre-shared key (write the password you created in the IPsec settings).</div>
    <li>Configure the following parameters:
+
<div>'''5.''' Select Type of sign-in info (User name and password).</div>
        <ol>
+
<div>'''6.''' Write Username (write the username you created in the L2TP settings).</div>
            <li>Select <i>VPN provider: WIndows (built-in)</i>.</li>
+
<div>'''7.''' Write Password (write the password you created in the L2TP settings).</div>
            <li>Enter a custom <i>Connection name</i>.</li>
+
<div>'''8.''' Press Save.</div>
            <li>Enter the router's WAN IP address into the <i>Server name or address</i> field.</li>
+
</ul>
            <li>Select <i>VPN type: L2TP/IPsec with pre-shared key</i>.</li>
 
            <li>Enter the <i>Pre-shared key</i> exactly as it was specified on the router.</li>
 
            <li>Select <i>Type of sign-in info: User name and password</i>.</li>
 
            <li>Enter the <i>User name</i> and <i>Password</i> exactly as they were specified on the router.</li></li>
 
            <li>Click <i>Save</i></li>
 
        </ol>[[File:{{{file_8}}}|border|class=tlt-border]]
 
    </li>
 
----
 
    <li>After you are redirected back to the VPN settings page, locate your new connection and click the <i>Connect</i> button. If the connection was successful, you should see the word "connected" appear under the connection name:<br>[[File:{{{file_9}}}|border|class=tlt-border]]</li>
 
<ul>
 
 
 
==Testing the configuration==
 
 
 
Open the Windows <b>Command Prompt</b> and attempt to ping router's L2TP address:
 
 
[[File:{{{file_10}}}|border|class=tlt-border]]
 
  
If your computer is receiving replies, then the L2TP/IPsec connection was a success.
+
[[File:L2TPWIN10-11.png|border|class=tlt-border|800px]]
 +
<li>Try connecting VPN server.</li>
 +
[[File:L2TPWIN10-12.png|border|class=tlt-border]]
 +
<li>It should show Connected.</li>
 +
[[File:L2TPWIN10-13.png|border|class=tlt-border]]
 +
<li>From computer, try to ping remote VPN endpoint by using CMD and ping command.</li>
 +
[[File:L2TPWIN10-14.png|border|class=tlt-border]]
  
 
==See also==
 
==See also==
  
* Other types of VPNs supported by {{{name}}} devices:
+
* Other types of VPNs suported by RUTxxx devices:
 
** [[L2TP configuration examples]]
 
** [[L2TP configuration examples]]
 
** [[IPsec configuration examples]]
 
** [[IPsec configuration examples]]

Please note that all contributions to Teltonika Networks Wiki may be edited, altered, or removed by other contributors. If you do not want your writing to be edited mercilessly, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource (see Teltonika Networks Wiki:Copyrights for details). Do not submit copyrighted work without permission!

Cancel Editing help (opens in new window)

Template used on this page: